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- The MAILING DATE of this communication appears on the cover sheet with the correspondence address - 
Period for Reply 

A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) FROM 
THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time may be available under the provisions of 37 CFR 1 .1 36(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If the period for reply specified above is less than thirty (30) days, a reply within the statutory minimum of thirty (30) days will be considered timely. 

- If NO period for reply is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication. 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 1 33). 

- Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1.704(b). 

Status 

1 )□ Responsive to communication(s) filed on . 



2a)D This action is FINAL. 2b® This action is non-final. 

3) D Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1935 CD. 1 1 , 453 O.G. 213. 
Disposition of Claims 

4) ^ Claim(s) 1-19 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) D Claim(s) is/are allowed. 

6) ^ Claim(s) 1-19 is/are rejected. 

7) D Claim(s) is/are objected to. 

8) D Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) D The specification is objected to by the Examiner. 

10)Q The drawing(s) filed on is/are: a)D accepted or b)D objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1 .85(a). 
1 1 )□ The proposed drawing correction filed on is: a)D approved b)D disapproved by the Examiner. 

If approved, corrected drawings are required in reply to this Office action. 

12) D The oath or declaration is objected to by the Examiner. 
Priority under 35 U.S.C. §§119 and 120 

13) D Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 1 19(a)-(d) or (f). 

a)QAII b)\J Some*c)Q None of: 

1 .□ Certified copies of the priority documents have been received. 

2. Q Certified copies of the priority documents have been received in Application No. . 

3. D Copies of the certified copies of the priority documents have been received in this National Stage 

application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 

14) Q Acknowledgment is made of a claim for domestic priority under 35 U.S.C. § 119(e) (to a provisional application). 

a) □ The translation of the foreign language provisional application has been received. 

15) D Acknowledgment is made of a claim for domestic priority under 35 U.S.C. §§ 120 and/or 121. 

Attach me nt(s) 

1 ) H Notice of References Cited (PTO-892) 4) □ Interview Summary (PTO-41 3) Paper No(s). . 

2) □ Notice of Draftsperson's Patent Drawing Review (PTO-948) 5) D Notice of Informal Patent Application (PTO-152) 

3) El Information Disclosure Statement(s) (PTO-1449) Paper No(s) 6 . 6) □ Other: 
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DETAILED ACTION 
Claim Rejections - 35 USC §102 

1 . The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that form the 
basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(a) the invention was known or used by others in this country, or patented or described in a printed publication in this 
or a foreign country, before the invention thereof by the applicant for a patent. 

Claims 1-19 rejected under 35 U.S.C. 102(a) as being anticipated by Jansen et al. NIST 
Special Publication 800-19 - Mobile Agent Security (hereafter Jansen). 

2. As per claims 1, 5, 7, Jansen teaches a mobile application security system(see pg. 2 5 2 nd 
paragraph, fig. 1), a central computer connected to a server computer, each host computer 
executing the mobile application that jumps between the hosts during execution, and the central 
computer including means for monitoring the security of the mobile application as it jumps 
between the hosts computers wherein when the mobile application is communicated from a first 
host to a second host, it passes through the central computer(pg. 13-14, protecting the agents 
platform section, teaches a "reference monitor" that cannot be bypassed and pg. 18-19, teach 
central or distributed architecture), are disclosed in Jansen because, Jansen discloses a central 
host connected to each node for controlling the security of mobile applications/agents(see pg. 18- 
19 protecting agents section, teaches both central and decentralized server architectures). 
Further, Jansen teaches a security monitoring means further includes detecting unwanted changes 
in the code associated with the mobile application when the mobile application is jumping 
between hosts(see pg. 6-7, section 2.3.4, pg. 9-10, section 3.2, pg. 10-11, section 3.3). 
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3. As per claim 2, Jansen teaches claim 1/1 wherein the detecting means further comprises 
means for storing a copy of each MA(mobile application) when the MA is created by having the 
creating node send a copy of the MA to the Central host, means for receiving data about the MA 
when it is received by another node and means for comparing the code of the MA received by 
the other node to the stored copy of the MA to determine if changes have been mode to the code 
of the MA (Section 3.2, page 9, 1 st paragraph teaches protecting against modification of code, i.e. 
comparing the original to the one received AND section 4.2.2 Mutual Itinerary Recording 
teaches tracking and comparing the Itinerary list as it traverses the peers - Since Jansen discloses 
both central and distributed Central host (see claim 1 above), this reads on using one stored copy 
for comparison purposes. Further to this point are the lists/tables, bottom list on page 14 and top 
list on page 19, which disclose many possible countermeasure means - one skilled in the art 
would provide for a one-to-one code compare at a minimum). 

4. As per claim 3, Jansen teaches security monitoring means comprises preventing a node 
from transmitting hostile code in a MA to another node (page 3, Denial of Service section 2.1.2, 
teaches "malicious code" being introduced by an outside person or by an internal test engineer, 
etc. AND page 19, top paragraph teaches IBM Aglets prevent receiving platform from accepting 
agents from an agent platform not defined as a trusted peer, see also, pg. 6-7, section 2.3.4). 

5. As per claim 4, Jansen teaches wherein preventing means comprises determining if the 
node dispatching the mobile application is trusted (pages 18-19, Protecting Agents, teaches 
trusted peers via IBM Aglets and Claim 3 above teaches Signed Code which infers trust), means 
for saving the code of the MA and means, when requested by another node, for providing the 
code for the MA to the requesting node (page 13-14, Protecting Agent Platform section - broadly 




Application/Control Number: 09/59 1 ,034 Page 4 

Art Unit: 2131 

discloses "trusted communications for MA's" which inherently includes requesting of MA and 
transmission of MA) but is silent on means for stripping the code from an initially received MA 
if the host is not trusted. 

Jansen teaches identifying a non-trusted machine (see previous claim rejections) and 
hence many options exist as to how to stay safe from said machine, i.e. do not communicate with 
it, only transmit to it, attempt to re-verify that it is a trusted machine, only communicate with 
certain machines, strip code. The examiner believes that stripping code is the most harsh of the 
possibilities since it may be that a network error occurred or the user entered a bad 
login/password/certificate/etc., which resulted in the failed trusting operation. The stripping of 
code should be left to a system administrator. 

6. As per claim 6, Jansen teaches wherein the detecting means further comprises means for 
saving a copy of the state of a MA received from a node that received the MA, means for 
receiving data about the same MA after a jump to another node and means for comparing the 
state of the MA after the jump to another node with the stored state of the MA to ensure that the 
state of the MA has not changed (page 17, section 4.1.4, State Appraisal section). 

7. As per claim 8, Jansen teaches wherein the detecting means further comprises means for 
saving a copy of the itinerary of a MA received from a node that received the MA, means for 
receiving the same MA after a jump to another node and means for comparing the itinerary of 
the MA after the jump to another node with the stored itinerary of the MA to ensure that the 
itinerary of the MA has not changed (page 21-22, section 4.2.2, 4.2.3, Mutual Itinerary 
Recording and Itinerary Recording with Replication/Voting sections). 
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8. As per claim 9, Jansen teaches wherein the itinerary comprises past historical itinerary 
data (page 17, Path Histories section AND page 21, Mutual Itinerary Recording and Itinerary 
Recording with Replication/Voting sections). 

9. As per claim 10, Jansen teaches security monitoring means comprises detecting unwanted 
changes in the state of the MA (page 17, State Appraisal teaches prevention of state 
corruption/modification, pg. 18-19). 

10. As per claim 12, it is rejected under the same basis as claim 3. 

11. As per claim 13, it is rejected under the same basis as claim 4. 

12. As per claim 14, Jansen teaches detecting unwanted changes to the itinerary of the MA 
(page 21, Section 4.2.2, Mutual Itinerary Recording teaches tracking of an agent's itinerary). 

13. As per claim 15, limitations have already been addressed(see claim 6). 

14. As per claim 16, rejected under the same basis as claim 14. 

15. As per claim 17, it is rejected under the same basis as claim 8. 

16. As per claim 18, it is rejected under the same basis as claim 9. 

17. As per claim 19, Jansen teaches receiving a mobile application at a central computer each 
time the mobile application is jumping between a first host and a second host(see pg. 18-19); and 
monitoring the security of the mobile application as it jumps between the host computers, 
wherein the security monitoring includes preventing untrusted hosts from initially launching 
mobile applications(pg. 3, 6-7). 
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Conclusion 



Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Jenise E Jackson whose telephone number is (703) 306-0426. 
The examiner can normally be reached on M-Th (6:00 a.m. - 3:30 p.m.) alternate Friday's. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz Sheikh can be reached on (703) 305-9648. The fax phone numbers for the 
organization where this application or proceeding is assigned are (703) 305 00 40*for regular 
communications and (703) 308-6306 for After Final communications. 

Any inquiry of a general nature or relating to the status of this application or proceeding 
should be directed to the receptionist whose telephone number is (703) 305-3900. 




December 12, 2003 




GILBERT0 BARRON 
SUPERVISORY PATENT EXAMINER 
TECHNOLOGY CENTER 2100 
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